Latest Apple Vulnerabilities

CVE-2024-6222
In Docker Desktop before v4.29.0 an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC ...
Docker Desktop<4.29.0
Apple macOS
Linux Linux kernel
Microsoft Windows
CVE-2024-27867
An authentication issue was addressed with improved state management. This issue is fixed in AirPods Firmware Update 6A326, AirPods Firmware Update 6F8, and Beats Firmware Update 6F8. When your headph...
Apple AirPods Firmware Update A326<6
Apple AirPods Firmware Update F8<6
Apple Beats Firmware Update F8<6
HT214111
About the security content of AirPods Firmware Update 6A326, AirPods Firmware Update 6F8, and Beats Firmware Update 6F8
Apple AirPods Firmware Update A326<6
Apple AirPods Firmware Update F8<6
Apple Beats Firmware Update F8<6
CVE-2024-20753
Adobe Photoshop PDF File Parsing Memory Corruption Remote Code Execution Vulnerability
Adobe Photoshop<24.7.4
Adobe Photoshop>=25.0<25.9
Apple macOS
Microsoft Windows
MFSA2024-27
Security Vulnerabilities fixed in Firefox for iOS 127
Mozilla Firefox=127
Apple iOS
CVE-2024-38312
When browsing private tabs, some data related to location history or webpage thumbnails could be persisted incorrectly within the sandboxed app bundle after app termination
Mozilla Firefox=127
Apple iOS
CVE-2024-38313
In certain scenarios a malicious website could attempt to display a fake location URL bar which could mislead users as to the actual website address
Mozilla Firefox=127
Apple iOS
CVE-2024-27812
The issue was addressed with improvements to the file handling protocol. This issue is fixed in visionOS 1.2. Processing web content may lead to a denial-of-service.
Apple visionOS<1.2
Apple visionOS<1.2
HT214108
About the security content of visionOS 1.2
Apple visionOS<1.2
MFSA2024-24
Security Vulnerabilities fixed in Focus for iOS 126
Mozilla Focus=126
Apple iOS
CVE-2024-5022
The file scheme of URLs would be hidden, resulting in potential spoofing of a website's address in the location bar
Mozilla Focus=126
Apple iOS
HT214107
About the security content of macOS Ventura 13.6.7
Apple macOS Ventura<13.6.7
CVE-2024-27803
A permissions issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access may be able to share items from the lock screen.
Apple iOS<17.5
Apple iPadOS<17.5
CVE-2024-27830
This issue was addressed through improved state management. This issue is fixed in tvOS 17.5, visionOS 1.2, Safari 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. A maliciously crafte...
Apple Safari<17.5
Apple macOS Sonoma<14.5
Apple tvOS<17.5
Apple watchOS<10.5
Apple iOS<17.5
Apple iPadOS<17.5
and 8 more
CVE-2024-27825
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. An app may be able to bypass certain Privacy pr...
Apple macOS Sonoma<14.5
CVE-2024-27827
Finder. This issue was addressed through improved state management.
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
CVE-2024-27847
Sync Services. This issue was addressed with improved checks
Apple macOS Monterey<12.7.5
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
Apple iOS<17.5
Apple iPadOS<17.5
Apple iOS<16.7.8
and 1 more
CVE-2024-27819
Siri. The issue was addressed by restricting options offered on a locked device.
Apple iOS<17.5
Apple iPadOS<17.5
<17.5
<17.5
CVE-2024-27800
Messages. This issue was addressed by removing the vulnerable code.
Apple macOS Monterey<12.7.5
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
Apple tvOS<17.5
Apple watchOS<10.5
Apple iOS<16.7.8
and 14 more
CVE-2024-27814
Phone. This issue was addressed through improved state management.
Apple watchOS<10.5
Apple watchOS<10.5
CVE-2024-27832
Disk Images. The issue was addressed with improved checks.
Apple macOS Sonoma<14.5
Apple tvOS<17.5
Apple watchOS<10.5
Apple iOS<17.5
Apple iPadOS<17.5
Apple visionOS<1.2
and 6 more
CVE-2024-27796
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An attacker may be able to elevate privileges.
Apple macOS Sonoma<14.5
Apple macOS Monterey<12.7.5
Apple macOS Ventura<13.6.7
Apple iOS<17.5
Apple iPadOS<17.5
Apple iOS<16.7.8
and 1 more
CVE-2024-27799
IOHIDFamily. This issue was addressed with additional entitlement checks.
Apple macOS Sonoma<14.5
Apple macOS Monterey<12.7.5
Apple macOS Ventura<13.6.7
Apple iOS<16.7.8
Apple iPadOS<16.7.8
Apple iPadOS<16.7.8
and 4 more
HT214100
About the security content of iOS 16.7.8 and iPadOS 16.7.8
Apple iOS<16.7.8
Apple iPadOS<16.7.8
CVE-2024-27824
PackageKit. This issue was addressed by removing the vulnerable code.
Apple macOS Monterey<12.7.5
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
CVE-2024-27815
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in tvOS 17.5, visionOS 1.2, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. An app may be able...
Apple macOS Sonoma<14.5
Apple tvOS<17.5
Apple watchOS<10.5
Apple iOS<17.5
Apple iPadOS<17.5
Apple visionOS<1.2
and 6 more
CVE-2024-27844
Safari. The issue was addressed with improved checks.
Apple Safari<17.5
Apple macOS Sonoma<14.5
Apple visionOS<1.2
Apple Safari<17.5
Apple macOS>=14.0<14.5
Apple visionOS<1.2
CVE-2024-23251
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.5, watchOS 10.5, iOS 17.5 and iPadOS 17.5, iOS 16.7.8 and iPadOS 16.7.8. An attacker with p...
Apple macOS Sonoma<14.5
Apple watchOS<10.5
Apple iOS<17.5
Apple iPadOS<17.5
Apple iOS<16.7.8
Apple iPadOS<16.7.8
and 6 more
CVE-2024-27805
An issue was addressed with improved validation of environment variables. This issue is fixed in macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8, tvOS 17.5, iOS 17.5 and iPad...
Apple macOS Monterey<12.7.5
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
Apple watchOS<10.5
Apple tvOS<17.5
Apple iOS<16.7.8
and 12 more
CVE-2024-27845
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in iOS 17.5 and iPadOS 17.5. An app may be able to access Notes attachments.
Apple iOS<17.5
Apple iPadOS<17.5
Apple iPadOS<17.5
Apple iPhone OS<17.5
CVE-2024-27828
IOSurface. The issue was addressed with improved memory handling.
Apple watchOS<10.5
Apple tvOS<17.5
Apple iOS<17.5
Apple iPadOS<17.5
Apple visionOS<1.2
<17.5
and 4 more
CVE-2024-27836
ImageIO. The issue was addressed with improved checks.
Apple macOS Sonoma<14.5
Apple iOS<17.5
Apple iPadOS<17.5
Apple visionOS<1.2
Apple iPadOS<17.5
Apple iPhone OS<17.5
and 2 more
CVE-2024-23236
A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to read arbitrary files.
Apple macOS Sonoma<14.5
CVE-2024-27834
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capabi...
ubuntu/webkit2gtk<2.44.2-0ubuntu0.22.04.1
ubuntu/webkit2gtk<2.44.2-0ubuntu0.23.10.1
ubuntu/webkit2gtk<2.44.2-0ubuntu0.24.04.1
ubuntu/webkit2gtk<2.44.2
debian/webkit2gtk<=2.36.4-1~deb10u1<=2.38.6-0+deb10u1<=2.42.2-1~deb11u1<=2.42.2-1~deb12u1
debian/wpewebkit<=2.38.6-1~deb11u1<=2.38.6-1
and 8 more
CVE-2024-27817
CoreMedia. The issue was addressed with improved checks.
Apple macOS Sonoma<14.5
Apple macOS Monterey<12.7.5
Apple macOS Ventura<13.6.7
Apple tvOS<17.5
Apple iOS<16.7.8
Apple iPadOS<16.7.8
and 12 more
CVE-2024-27855
Shortcuts. The issue was addressed with improved checks.
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
Apple iOS<16.7.8
Apple iPadOS<16.7.8
Apple iOS<17.5
Apple iPadOS<17.5
and 6 more
CVE-2024-27818
Kernel. The issue was addressed with improved memory handling.
Apple macOS Sonoma<14.5
Apple iOS<16.7.8
Apple iPadOS<16.7.8
Apple iOS<17.5
Apple iPadOS<17.5
CVE-2024-27843
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to elevate privileges.
Apple macOS Monterey<12.7.5
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
CVE-2024-27839
A privacy issue was addressed by moving sensitive data to a more secure location. This issue is fixed in iOS 17.5 and iPadOS 17.5. A malicious application may be able to determine a user's current loc...
Apple iOS<17.5
Apple iPadOS<17.5
CVE-2024-23282
Mail. The issue was addressed with improved checks.
Apple macOS Sonoma<14.5
Apple watchOS<10.5
Apple iOS<16.7.8
Apple iPadOS<16.7.8
Apple iOS<17.5
Apple iPadOS<17.5
and 6 more
CVE-2024-27810
A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, watchOS 10.5, macOS Sonoma 14.5. An app may be able to read sensitive location...
Apple macOS Sonoma<14.5
Apple macOS Monterey<12.7.5
Apple macOS Ventura<13.6.7
Apple watchOS<10.5
Apple tvOS<17.5
Apple iOS<17.5
and 1 more
CVE-2024-27811
libiconv. The issue was addressed with improved checks.
Apple macOS Sonoma<14.5
Apple watchOS<10.5
Apple tvOS<17.5
Apple iOS<17.5
Apple iPadOS<17.5
Apple visionOS<1.2
and 6 more
CVE-2024-27851
The issue was addressed with improved bounds checks. This issue is fixed in tvOS 17.5, visionOS 1.2, Safari 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. Processing maliciously craf...
Apple Safari<17.5
Apple macOS Sonoma<14.5
Apple watchOS<10.5
Apple tvOS<17.5
Apple iOS<17.5
Apple iPadOS<17.5
and 8 more
CVE-2024-27831
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8, tvOS 17.5, visionOS 1.2, iO...
Apple macOS Monterey<12.7.5
Apple macOS Sonoma<14.5
Apple macOS Ventura<13.6.7
Apple tvOS<17.5
Apple iOS<16.7.8
Apple iPadOS<16.7.8
and 12 more
CVE-2024-27885
PackageKit. This issue was addressed with improved validation of symlinks.
Apple macOS Sonoma<14.5
Apple macOS Monterey<12.7.5
Apple macOS Ventura<13.6.7
Apple macOS<12.7.5
Apple macOS>=13.0<13.6.7
Apple macOS>=14.0<14.5
CVE-2024-27837
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. A local attacker may gain access to Keychain items.
Apple macOS Sonoma<14.5
CVE-2024-27804
AppleAVD. The issue was addressed with improved memory handling.
Apple watchOS<10.5
Apple macOS Sonoma<14.5
Apple tvOS<17.5
Apple iOS<17.5
Apple iPadOS<17.5
CVE-2024-27820
The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.5, iOS 16.7.8 and iPadOS 16.7.8, visionOS 1.2, Safari 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 1...
Apple Safari<17.5
Apple macOS Sonoma<14.5
Apple watchOS<10.5
Apple tvOS<17.5
Apple iOS<17.5
Apple iPadOS<17.5
and 12 more
HT214102
About the security content of tvOS 17.5
Apple tvOS<17.5
HT214105
About the security content of macOS Monterey 12.7.5
Apple macOS Monterey<12.7.5

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203